manifests/rules/dns_rules.pp


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22

# open dns port
define shorewall::rules::dns_rules(
  $source = $name,
  $action = 'ACCEPT',
) {
  shorewall::rule {
    "${source}-me-tcp_dns":
      source          => $source,
      destination     => '$FW',
      proto           => 'tcp',
      destinationport => '53',
      order           => 240,
      action          => $action;
    "${source}-me-udp_dns":
      source          => $source,
      destination     => '$FW',
      proto           => 'udp',
      destinationport => '53',
      order           => 240,
      action          => $action;
  }
}